Google said today that a North Korean government hacking group has targeted members of the cyber-security community engaging in vulnerability research. ZDNet Recommends The best Chromebook laptops Our pick of the best Chromebooks for work, school, and home. Read More The attacks have been spotted by the Google Threat Analysis Group (TAG), a Google security team specialized in hunting advanced persistent threat (APT) groups.In a report published earlier today, Google said North Korean hackers used multiple profiles on various social networks, such as Twitter, LinkedIn, Telegram, Discord, and Keybase, to reach out to security researchers using fake personas.Email was also used in some instances, Google said.”After establishing initial communications, the actors would ask the targeted researcher if they wanted to collaborate on vulnerability research together, and then provide the researcher with a Visual Studio Project,” said Adam Weidemann, a security researcher with Google TAG.The Visual Studio project contained malicious code that installed malware on the targeted researcher’s operating system. The malware acted as a backdoor, contacting a remote command and control server and waiting for commands.New mysterious browser attack also discoveredBut Wiedemann said that the attackers didn’t always distribute malicious files to their targets. In some other cases, they asked… Read full this story


Google: North Korean hackers have targeted security researchers via social media have 308 words, post on www.zdnet.com at January 26, 2021. This is cached page on IT Breaking News. If you want remove this page, please contact us.

 

Original Source